CIS-CAT Pro Assessor

The CIS Benchmarks are set of best practices to help organizations securely configure IT systems, software, networks, and cloud infrastructure. The CIS-CAT Pro Assessor by the Center for Internet Security allows you to scan systems against these CIS benchmarks and CIS controls and report on their levels of compliance.

Puppet Comply uses the CIS-CAT Pro Assessor as its scanner tool to assess compliance with CIS Benchmarks. The assessor is installed as an integral part of the Comply setup process. During the Comply configuration, Puppet Enterprise automatically installs the CIS-CAT Pro Assessor on the target nodes you want scanned for compliance. This enables comprehensive security assessments across various operating systems and platforms. The assessor's regular updates and wide benchmark coverage allow you to perform up-to-date compliance scans based on different security profiles.

The CIS-CAT Pro Assessor uses an embedded Java Runtime Environment (JRE) for its operation. This embedded JRE allows the assessor to run independently without relying on the system's installed Java version, ensuring consistency across different environments where Comply is deployed. For more information, please visit the CIS-CAT Pro Assessor page from the Center for Internet Security.